Solved

Windows Firewall Ports on Exchange 2007 CAS/HUB/MAILBOX Server

Posted on 2008-10-24
6
3,047 Views
Last Modified: 2012-05-05
I recently turned on Windows Firewall on a Windows Server 2003 SP2 that has Exchange 2007 SP1 CAS/HUB/MAILBOX roles configured and email stopped coming in. I was wondering what ports I need to open to allow internal users to connect using Outlook 2003 and 2007. I tried to open port 25 & 443 but it still didn't work.
0
Comment
Question by:katredrum
6 Comments
 
LVL 8

Expert Comment

by:DenverRick
ID: 22799344
It will depend on where the Domain info is coming from, is this box a DC?
0
 
LVL 1

Author Comment

by:katredrum
ID: 22799851
No, it is only a member server.
0
 
LVL 5

Accepted Solution

by:
Probity earned 500 total points
ID: 22801876
25 - smtp
110 - pop3
143 - imap4
80 - http
443 - https

Those are necessary... however, if you have local users connecting to the box, they will be using MAPI which uses many ports (random) to connect to the server -- unless you're having your users use RPC over HTTPS in-house or POP/IMAP - you will need to disable to firewall.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 1

Author Comment

by:katredrum
ID: 22815749
Probity, thank you for your response. I do have users connecting via Outlook from inside the network so I will need to disable the firewall. Is it common practice to disable Windows Firewall on servers in general?
I had all my servers configured this way (without firewall on) but with some users on the network being infected with spyware, adware, and virus' I wanted to try and prevent the server from being infected on ports that doesn't have to be open.
0
 
LVL 1

Author Closing Comment

by:katredrum
ID: 31511014
Did a little more researching and found that no one really put the Windows Firewall on Exchange Server if they have a corporate firewall. I think it is kind of stupid that Microsoft isn't able to program their software to be protected using their own firewall.
0
 
LVL 1

Expert Comment

by:Nelesh_N
ID: 24410612
Sorry just to pick up on this. I'm having issues with dsl users coming into the network. If the maibox resides on the one cluster it works fine, if connecting to the other cluster it drops on ports 2141 and 2112. Are these the dynamic ports that exchange use to connect to Outlook?
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question